Arizona Announces New CISO

VanderNaalt will head the Statewide Information Security and Privacy Office within the Government Information Technology Agency.

Governor Janet Napolitano has announced the appointment of experienced IT security manager David VanderNaalt to the post of Chief Information Security Officer (CISO) for Arizona.

"David's broad background and experience in the IT security arena make him the ideal person to serve as the Chief Information Security Officer for the state," Napolitano said.

VanderNaalt has more than 35 years of experience in IT Security in both the public and private sectors. He comes most recently from the New York City Department of Information Technology and Telecommunications, where he has served as both the director of Citywide Information Security and as the director of Citywide Emergency Continuity Planning.

RELATED

Prior to his tenure with New York City, VanderNaalt served as the first director of Worldwide Information Security with American Express (1986-1999). In this capacity, he was responsible for developing the first American Express enterprise-wide security program.

VanderNaalt is also a Certified Information Security Manager and a senior fellow at the Ponemon Institute.

The position of CISO was signed into law by Governor Napolitano in the last legislative session. As CISO, VanderNaalt will head the Statewide Information Security and Privacy Office within the Government Information Technology Agency.

"I am very excited to have David's leadership abilities in GITA," said State Chief Information Officer Chris Cummiskey. "With his extensive background in both the public and private sectors, he has the knowledge necessary to get this important office off the ground."

The Senate Judiciary Committee twice voted not to send the proposed law to the floor, making New Mexico one of only three states without a law requiring that consumers be notified in case of data breaches.